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APPARATUS AND METHOD FOR AUTHENTICATION 
OF COMPUTER-READABLE MEDIUM 

5 

BACKGROUND OF THE INVENTION 

1. Field of the Invention 

The present invention relates in general to authentication in computer systems, and, more 
specifically, to authentication of a computer-readable mediirai containing valuable informational 
10 content. 

2. Description of the Related Technology^ 

The software and entertainment industries have a strong interest in protecting valuable 
business softwai'e and other types of software, such as recreational game software, and music, 
movie and other entertainment content from unauthorized copying and distribution. The 

1 5 widespread use of personal computers, Intemet access, and portable devices such as MPS players 
has permitted extensive imauthorized distribution of software and entertainment content. As the 
software and entertainment industries are increasingly using the Intemet for distribution of 
software and content to businesses and consumers, it has become important to limit this 
distribution to authorized customers who have properly paid for or otherwise are entitled to 

20 receive this software and content. The providing of software updates and additional 
entertainment content or related services through hitemet distribution, for example as may be 
provided under subscription-based distribution models, further increases the need to control 
distribution to authorized customers. Also, purchasers of software often desire to interact with 
other users of compatible software, for example Internet-based games software, and do so 

15 through a central server computer that enables this interaction. 

Prior approaches to limiting distribution to authorized customers have included efforts to 
authenticate the customer prior to permitting the customer to download software and/or 
entertainment content. These approaches include establishing an Intemet connection between a 
client computer and a server computer and the manual entry of authenticating data by the user. 

! 0 Such authenticating data may include a password provided by a sofh\^are or content vendor at the 
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time of sale or specific text that is located by the user from a manual or other paper guide 
provided as part of the customer's purchase. A limitation of these manual approaches is the 
manual effort required by the customer, which may find the locating of information in a manual 
or typing in of a password more time-consuming or difficult than is offered in competing 
5 products. Thus, it would be desirable to have an authentication approach that is automated and 
does not require manual action by the customer. 

Another limitation of prior manual authentication approaches is that they are susceptible 
to piracy because the password or other authenticating data provided to an original customer may 
be copied and distributed along with pirated copies of software or entertainment content. More 

1 0 complicated manual approaches have required the entering of additional authenticating data by 
the customer that varies with time or other events associated with the customer's use of a 
purchased computer product or on-line service, but such approaches only increase customer effort 
and frustration. It would be preferable for any use of such additional authentication criteria to be 
automated and handled without additional customer interaction. 

15 Yet another limitation of prior manual authentication approaches is that they do not 

provide a convenient altemative authentication approach if the primary authentication approach 
fails. The typical back-up altemative reqvdres live communication with a vendor. It would be 
preferred to have an automatic authentication approach with redundancy that permits at least a 
semi-automatic authentication approach in case the primary approach fails. 

20 Hence, there is a need for an authentication process for controlling distribution of 

software and content to customers that is automated, provides redundancy, and permits more 
extensive checking of multiple authentication criteria without additional manual involvement by 
customers. 

15 

SUMMARY OF THE INVENTION 
Accordingly, it is an object of the invention to provide an authentication process for 
controlling distribution of software and content to customers that is automated, provides 
redvmdancy, and permits more extensive checking of multiple authentication criteria without 
JO additional manual involvement by customers. 
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In order to achieve the above and other objects of the invention, a method of 
authenticating an article of digital media having a digital work provided thereon includes 
identifying criteria on the article of digital media; and comparing the criteria to corresponding 
criteria that is know to be present on an original master version of the digital work. 

These and various otlier advantages and features of novelty that characterize the 
invention are pointed out with particularity in the claims annexed hereto and forming a part 
hereof However, for a better understanding of the invention, its advantages, and the objects 
obtained by its use, reference should be made to the drawings which form a further part 
hereof, and to the accompanying descriptive matter, in which there is illustrated and described 
a preferred embodiment of the invention. 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block diagram illustrating a computer system for authentication according to 
the present invention; 

FIG. 2 illustrates the contents of a compact disc according to the present invention; 

FIG. 3 is a process flow diagram illustrating a method for authentication according to the 
present invention; 

FIG. 4 is a process flow diagram illustrating an authentication process in the 
authentication method of FIG. 3; 

FIG. 5 is a process flow diagram illustrating a local criteria checking process in the 
authentication method of FIG. 4; and 

FIG. 6 is a data flow diagram illustrating data streams between the client computer and 
music server of FIG. 1. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT(S^ 

Referring now to the drawings, wherein like reference numerals designate corresponding 
structure throughout the views, the present invention provides an apparatus and method for 
authenticating a computer-readable medium such as, for example, a compact disc (CD) loaded 
into a client computer (sometimes referred to herein as simply "client"), which is in 
communication with a remote server computer (sometimes referred to herein as simply "server"). 
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In particular, according to one aspect of the present invention, the authentication is accomplished 
using software and data stored on the CD itself in which the software is automatically laxmched 
after insertion of the CD into a CD drive on the client and investigates one or more criteria 
associated with the CD and/or client as part of the authentication process. After authentication of 
5 the CD, the server authorizes downloading of digital content identical to or related to the software 
or content on the CD or other related new information to the client. 

Although the present invention is discussed below in the non-limiting example of an 
audio CD, the present invention may generally be used with other types of digital storage media 
including, for example, CD-ROMs, CD-Rs, and DVDs. Further, the present invention is 

1 0 applicable in general to the protection and control of the distribution of any type of information 
that may be stored on a computer-readable medium such as, for example, software, data, music, 
and movies. Accordingly, the present invention extends to and is useftil with these other media 
and types of information. 

FIG. 1 is a block diagram illustrating a computer system 100 for authentication of a 

1 5 computer-readable medixmi, for example a compact disc 116, according to the present invention. 
Computer system 100 includes a client 102 and a music server 104 connected by a remote 
connection 1 06, for example a standard Internet connection. Client 1 02 has a central processing 
unit (CPU) 108, a hard drive 112 coupled to CPU 108, and a hardware unit for reading the 
computer-readable medium, for example compact disc drive 110. Client 102 is, for example, an 

20 Intel-based personal computer running the WINDOWS operating system from Microsoft 
Corporation. One skilled in the art will recognize that numerous other hardware platforms may 
also be used for client 102. 

Compact disc 1 1 6 is typically purchased by a customer in physical form in a compact disc 
package 120, which includes compact disc 116 and collateral information 118. Compact disc 

25 116 is, for example, a multi-session compact disc having standard audio tracks recorded in a first 
session and standard digital data recorded in a second session. Compact disc 1 16 is read by 
compact disc drive 110. The audio tracks may correspond, for example, to the songs in an album 
produced by a music publisher. The types of digital data provided on compact disc 1 16 permit 
authentication of compact disc 116 according to the present invention as described in more detail 

30 below. The digital data recorded in the second session may additionally include protected digital 
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copies of the music content of the first session whereby such protected content may only be 
accessed by the user's computer after authentication and subsequent downloading of a digital 
music file licenses 115 to access this digital music content. The digital file protection may be 
provided by any number of proprietary or commercially available Digital Rights Management 
apparatuses such as Microsoft's "Windows Media Rights Manager" (WMRM) or IBM's 
Electronic Media Management System (EMMS). 

According to the present invention, and if authentication of compact disc 116 has been 
achieved, digital music files 1 14 are downloaded from music server 104, or copied from the 
collateral mformation 118 stored on the second session of the compact disc 1 16, to client 102 
and, for example, stored on hard drive 112. When content is downloaded. Server 104 selects 
music files 1 14 from a music library 122, which is a database of a large number of music files 
and digital music file licenses 115 corresponding to, for example, music albums for different 
performing artists. Music library 122 may be managed by music server 104 or by a dedicated 
database server (not shown) using conventional techniques. When content is alternatively 
copied from the collateral content 118 of the second session of the compact disc 1 16 the 
music library is pre-determined once the compact disc 1 16 is manufactured since the compact 
disc is a read-only storage medium. According to the present invention, content may be 
transferred to the client computer 102 hard drive 1 12 by being downloaded from a music 
server 104, copied fi^om the collateral content 1 18, or through a combination of the two 
methods, but no data transfer may take place prior to authentication of tlie compact disc 116 
medium which is the subject of the present invention 

When compact disc 1 16 is inserted into drive 1 10, the authentication according to the 
present invention is executed automatically, as described in more detail below. Successful 
authentication of compact disc 116 enables a customer to, for example, conveniently and 
automatically obtain a digital version of a music album recorded on compact disc 116. 

According to the present invention, music files 114 downloaded fi-om server 104, or 
copied directly from the compact disc collateral information 118, typically correspond one-to-one 
to the content in the audio tracks of compact disc 116. Also, additional songs, for example 
performed by the same artist, and/or other information or content such as images and videos may 
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be downloaded to client 102. In addition, music files 114 may be updated versions of the same 
songs previously recorded onto compact disc 116. Further, in other embodiments, files 114 may 
be software or other content files corresponding, for example, to software distributed on compact 
disc 116. In the case of software files, library 1 22 may contain regularly updated versions of the 
5 corresponding software so that the user of client 102, when in physical possession of compact 
disc 116, may periodically acquire updated versions of software. In yet other embodiments, other 
files may be stored in library 1 22 and/or collateral information 1 1 8 and provided to client 1 02 to 
offer related services to the purchaser of compact disc 116. 

Standard audio compact disc players may be used to play the songs on compact disc 116. 

10 Also, the purchaser of compact disc package 120 may use client 102 to make copies of digital 
music files 114 onto compatible portable devices such as, for example, WMA and MPS players. 
According to the present invention, a publisher of the informational content, for example music 
files, stored on compact disc 116 can better control use and distribution of the content on 
compact disc 1 1 6 by controUmg a purchaser's ability to copy music files directly from compact 

15 disc 116 to hard drive 112. If direct copying were permitted, then a purchaser may be able to 
create digital copies of, for example, songs on compact disc 116 using so-called ripping software 
and then electronically distribute these copies without authorization to other persons. In contrast, 
the present invention permits more control over distribution while still providing an authorized 
purchaser with convenience of use of music content on multiple platforms. 

20 One of the many available content control approaches may be used to prevent direct 

copying of files from compact disc 1 1 6 to hard drive 112. After authentication of compact disc 
116, the purchaser is able to obtain music files 1 14. Copying and distribution of music files 114 
after download can be controlled using a standard digital rights management approach. Thus, 
a purchaser is able to play compact disc 1 16 on standard audio players and to obtain digital files 

25 for use on the purchaser's personal computer. Authentication of compact disc 116 is now 
discussed in more detail below. 

FIG. 2 illustrates the contents 200 of a computer-readable medium, for example compact 
disc 116, according to the present invention. As mentioned above, compact disc 116 is, for 
example, a multi-session disc. Music content 202 is stored in a first session and contains audio 

30 tracks corresponding, for example, to a music album and corresponding, as mentioned above, to 
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digital music files 114. Several data files are stored in a second data session and are listed in a 
directory 204, which is also stored in the second session. According to the present invention, the 
data files include a computer program 206, an identifier file 208, an HTML file 2 1 0, an auto-run 
information file 212 and, optionally, protected versions of the music content 214. 
5 Computer program 206 executes and controls the authentication metihtod according to the 

present invention, as discussed in greater detail below. Computer program 206 is programmed 
using, for example, the C4H- programming language. However, one skilled in the art will 
recognize in light of the following description that many other types of programmmg languages 
may be used to implement program 206. Auto-run information file 2 12 provides the information 

1 0 necessary for automatically launching computer program 206 when a user inserts compact disc 
116 into drive 110. The auto-run feature is implemented using a standard approach such as, for 
example, available when using the WINDOWS 98 operating system from Microsoft Corporation 
nmning on an Intel-based personal computer. One skilled in the arts will recognize that similar 
auto-run approaches can be implemented for other platfomis such as, for example, tiie Apple and 

1 5 Sun Microsystems computer platforms. 

HTML file 210 provides text and images to provide a user with information that the user 
may manually access in the event that computer program 206 does not automatically laimch after 
insertion into drive 1 1 0 or remote connection 1 06 is not automatically established. Identifier file 
208 includes a content identifier 214 and a secret key 216. Content identifier 214 is sent to music 

20 server 1 04 and enables sender 1 04 to select music files 1 1 4 and/or digital music licenses 116 firom 
music library 122 that correspond to compact disc 116. Secret key 216 is, for example, an 
arbitrarily selected hexadecimal string and is used as part of the authentication process as 
described further below. 

FIG. 3 is a process flow diagram illustrating a method for authentication according to the 

15 present invention. The method is generally executed under the control of computer program 206. 
However, some portions of the method are initiated by the user of client 102 or controlled by 
server 104 as described below. 

In step 300, the user loads compact disc 116 into drive 110. In step 302, computer 
program 206 is automatically laxmched using the auto-run feature defined by auto-run 

JO information file 212. In step 304, program 206 attempts to establish remote connection 1 06. In 
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Step 306, if connection 106 is established, then authentication of compact disc 1 16 is attempted in 
step 308. 

If coimection 1 06 is not established because program 206 fails to latmch, then in step 318 
the user attempts to manually connect to server 104 as instructed by directions provided in 
5 collateral information 118. These directions, for example, direct the user to launch a standard 
browser program such as, for example, INTERNET EXPLORER from Microsoft Corporation 
and connect to server 1 04 through remote connection 1 06 using a URL that the user is provided 
in collateral information 118. 

HTML file 210 contains information that the user may manually access using directory 
10 204. This information may, for example, contain similar instructions regarding manual 
connection to server 104, including the appropriate URI., as described above for collateral 
information 118. HTML may also contain other information of benefit to the user relating to the 
software or content on compact disc 116. 

If program 206 is successfiilly launched, but remote coimection 1 06 is not established due 
15 to a failure for some other reason, then in step 318 program 206 presents a pop-up informational 
window to the user that directs the user to manually attempt to establish remote connection 106, 
for example by the user' s establishing a dial-up Internet connection, and to re-insert compact disc 
116 into drive 110 so that program 206 once again is launched and attempts to establish a 
connection to server 104. 

20 In step 320, after the user has coimected to server 1 04, the user requests authentication of 

compact disc 116, and server 104 attempts to initiate authentication. In a first approach, server 
104 attempts to remotely launch program 206 to perfonn authentication in step 308, In a second 
approach, server 104 downloads and executes a standard Common Object Model (COM) object, 
which substantially includes the same authentication ftmctionality as program 206, to client 1 02 

25 to perform authentication in step 308. 

In step 322, if compact disc 116 can be accessed for authentication purposes by server 1 04 
as described above, then the authentication process of step 308 is performed. Thus, according to 
the present invention, redundancy as described above is provided for the authentication method, 
which continues in step 308 in an automated manner. 

30 In step 310, if authentication is successfiil, then in step 312 the user is permitted to 
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download music files 114 and/or digital music file licenses 116. Server 104 downloads an 
HTML web page to client 102, or alternatively directs client 102 to an HTML web page already- 
stored with compact disc collateral information 116^ which is read by a standard browser 
component provided in program 206 and then displayed to the user. The web page presents the 
5 song tracks or other files that may be selected for download or copying to the client computer. In 
step 312, one or more tracks may be selected by the user and then downloaded or copied as music 
files 114. 

In step 322, if compact disc 116 cannot be accessed, then in step 324 server 104 requests 
that the user review collateral information 118 for specific text content for manual entry into 

10 client 102 by the user. In step 316, server 104 compares the manually-entered text with the 
original text provided on collateral information 118. In an alternative approach, the user could 
manually obtain text from a file on compact disc 116. If the text content provided matches the 
original text, then in step 312 the user is permitted to obtain music files 1 14 as described above. 
If the user enters incorrect text, then in step 3 14 music download and/or music license download 

15 is not permitted. The manual entry of authenticating text provides additional redundancy to the 
foregoing authentication methods. 

FIG. 4 is a process flow diagram illustrating the authentication process of step 308 in FIG. 
3. The process of FIG. 4 is controlled by program 206. Specifically, in step 400, a secure 
communication session is established between client 1 02 and server 1 04 using, for example, 

20 standard encryption techniques. In step 402, client 102 requests a session key from serv^er 104. 
In step 404, the session key is decrypted by client 102 and used by client 102 for identifying the 
session in fiirther commxmications with server 104. 

In step 406, program 206 checks several local criteria associated with client 102 and/or 
compact disc 1 16, as described further below. In step 408, if any one or more of the local criteria 

25 are not successfully satisfied, then in step 410 authentication fails. However, if all criteria are 
satisfied, Ihen in step 412 secret key 2 1 6 is encrypted and sent to server 1 04. In step 414, content 
identifier 214 is encrypted and sent to server 104. It should be noted that, in general, all 
communications between client 102 and server 104, including the downloading of music files 
114, are encrypted for increased security. 

30 In step 416, server 104 decrypts secret key 2 16, and in step 41 8 checks to see if secret key 
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216 matches its original value as mastered onto compact disc 116. If secret key 216 matches this 
value, then authentication is successful in step 422, and in step 424 content identifier 214 is used 
to select the appropriately corresponding music files 114 for download to the user. If secret key 
216 does not match, then authentication fails in step 420. 
5 FIG. 5 is a process flow diagram illustrating the local criteria checking process of step 

406 in the authentication method of FIG. 4. The local criteria are checked under the control of 
program 206. In step 500, program 206 reads directory 204 and makes a standard operating 
system call to determine if the device from which directory 204 is being read is a removable- 
computer-readable-medium drive such as, for example, compact disc drive 110. 

10 In step 502, if the current drive is a removable-computer-readable-medium drive, then 

criteria checking continues. Otherwise, the local criteria are not satisfied in step 514. If the 
current drive is not a removable-computer-readable-medium drive, then it is presumed that the 
current drive is an unauthorized drive such as, for example, hard drive 112 onto which the user 
has made an unauthorized copy of compact disc 116. 

15 In step 504, program 206 makes a standard device call, using for example a standard 

Small Computer Serial hiterface (SCSI)/Integrated Drive Electronics (IDE) command to drive 
1 10, to determine the type of compact disc media being read from drive 1 10. In one approach, 
compact disc contents 200 are checked for the presence of a so-called Absolute Time in Pre- 
Groove (ATIP) by issuing a "Read TOC/PMA/ATIP" conmiand. An ATIP is associated with 

10 recordable compact discs (such as CD-Rs or CD-RWs) and is written onto a CD-R or CD-RW 
when recording content thereon. 

Generally, the purchaser of compact disc package 120 is not authorized to make a copy of 
music content 202 to a CD-R disc. It has been found that an ATBP is generally only absent if a 
compact disc has been pressed from a master. Accordingly, if the contents of the ATIP are 

15 returned by this command, then it is presumed that the media is an unauthorized CD-R disc, and 
authentication fails. Specifically, in step 506 if an ATIP is present, then in step 514 criteria are 
not satisfied. If no ATIP information is retumed, then this criterion is passed. 

In other approaches step 504 could check other types of information from compact disc 
contents 200, such as information stored in the so-called lead-in or lead-out area of either an 

$0 audio or data session on compact disc 116. This information may, for example, include 
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information regarding the version of software that is distributed on compact disc 1 16 or that 
uniquely identifies the artist associated with compact disc 116. 

In step 508, certain content, for example text, is read from HTML file 210 and compared 
to the originally mastered content. In step 510, program 206 reads the file size and time stamp 
5 for all files stored in the data session on compact disc 1 16. In step 512, if the content, file sizes 
and time stamps all match the originally mastered values, then criteria checking continues. 
Otherwise, the local criteria are not satisfied in step 514. 

In step 520, certain low-level content is read from compact disc 116 and inspected for 
known errors purposefully introduced during the mastering process. Ideally, such intentional 
10 errors should be made to sections of the compact disc 216 that can onl}'' be made during the 
mastering process, that can be read by traditional compact disc readers, and that catinot be written 
by conventional compact disk writers (CD bxraiers). For example, intentional errors may be 
introduced to the P and Q parity symbols in the EMF frame and/or to the sync bits of the P-W 
sub-chaimels in the lead-in or lead-out area of any one or multiple sessions on the compact disc 
15 116. Optimally, such errors should be located in one of the last blocks of the lead-out area of the 
last session since no essential information is present in the lead-out area which will minimize any 
unwanted side effects of a read error. 

In step 522, these intentional errors are compared to the errors in the originally mastered 
content and if these errors substantially match the originally mastered values, then all criteria are 
10 satisfied in step 516. Otherwise, t^e local criteria are not satisfied in step 514. A substantial 
match is all that is required for this test since compact disc degradation over time may cause 
certain errors to be indiscernible and so, in the current embodiment, only a simple maj ority (5 1 %) 
of such errors must match. 

Although specific local criteria have been described above, it should be appreciated that 
15 according to the present invention mmierous combinations and types of other local criteria could 
also be checked. In step 5 1 8, program 206 reads identifier file 208 to obtain secret key 2 1 6 and 
content identifier 214 for sending to server 104. 

FIG. 6 is a data flow diagram illustrating the primary data streams between client 1 02 and 
music server 104. In data stream 600, client 102 sends a request for a session key as described 
0 above. Then, in stream 602, server 104 sends the session key in encrypted form. 
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If authentication as described above is successful, then in stream 604, client 102 sends 
secret key 216 and content identifier 214 in an encrypted form to server 104. In stream 606, in 
response server 104 sends a web page that is displayed by program 206 and pennits the user to 
customize the user' s choice of music files 114 and music licenses 1 1 5 for downloading jfrom the 
5 music server 1 04 and/or copying jfrom compact disc 1 1 6. In stream 608, music files 114 and/or 
music licenses 115 are downloaded to client 102. 

In an alternative embodiment of the present invention authentication of the compact disc 
116 may be accomplished solely through the execution of computer program 206 without 
requiring access to the music server 1 04 provided the criteria checking steps taken in Figure 5 are 

10 reduced to only those tests which may be perfomied with knowledge in hand prior to the 
mastering process. Accordingly, date and time stamp checking for all files on the compact disc 
510 would have to be abandoned since program 206 would have no a priori knowledge of the 
date and time these files would be created since, by definition, such information may only be 
obtained post-mastering and computer program 206 must be created prior to mastering. 

15 By the foregoing description, a novel apparatus and method for authentication of a 

computer-readable medium have been disclosed. The present invention has the advantages of 
automating the authentication process, providing redundancy in processes that may be used by a 
customer for authentication to enable downloading of files and/or licenses fi-om a central server, 
and the local use of an authentication program rvimiing on the client, which reduces 

20 communications and processing demands on the server. Further advantages include the 
flexibility to customize the authentication approach by varying the local criteria checked during 
authentication. By the use of the foregoing mvention, downloading and fiarther copying and 
distribution of software or content is controlled and piracy and other unauthorized copying is 
made more difficult. 

25 It is to be understood, however, that even though nimierous characteristics and advantages 

of the present invention have been set forth in the foregoing description, together with details of 
the structure and function of the invention, the disclosure is illustrative only, and changes may be 
made in detail, especially in matters of shape, size and arrangement of parts within the principles 
of the invention to the Ml extent indicated by the broad general meaning of the terms in which 

30 the appended claims are expressed. 
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WHAT IS CLAIMED IS; 

1 . A method of authenticating an article of digital media having a digital work provided 
thereon, comprising steps of: 

identifying criteria on the article of digital media; and 

comparing the criteria to corresponding criteria that is know^ to be present on an 
original master version of the digital v^ork. 
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